YouTube Videos


Security and Audit Field Manual: Microsoft Dynamics 365 for Finance & Operations, Spring 2020 release

For many companies, Microsoft Dynamics 365 for Finance and Operations (D365FO) is the core of their financial management system, and protecting against fraud, misstatements, and errors is a critical component of running D365FO. Sometimes though, it’s hard to know where to start. This is a book about D365FO security written to help users, administrators, and auditors better understand how to plan, implement, and audit D365FO security for their financial operations. Security books tend to be heavy on theory or application, rarely including both. This Security and Auditing Field Manual is designed to help users understand sound control principles and how to apply them in D365FO.

Get the book here: Security and Audit Field Manual: Microsoft Dynamics 365 for Finance and Operations

You can find more of my books on my Amazon Author Page.


Develop and Implement Least Privilege Security

We are all concerned with security – in every aspect of our lives. We are especially concerned with security and control when it comes to our business processes. In this E-book, we will walk through the necessary steps to take a least privilege methodology to secure your Microsoft Dynamics 365 for Finance and Operations (D365FO) environment. The least privilege methodology is the process of reducing a user’s access, so they are only allowed to perform the tasks necessary within the application. This is important for several reasons:

  • Environment Risk – if a user has more access than needed, they may intentionally or inadvertently perform actions that could put your company at risk.
  • User Licensing – since licensing is tied to user access, ensuring least privilege access is followed could save your company money on licensing costs.
  • Segregation of Duties – following the same idea as environment risk, if a user has more access than needed, they may have unnecessary segregation of duties violations that go unaddressed.

Get the E-book here: Develop and Implement Least Privilege Security for D365FO

Fastpath vs. Dynamics AX/D365FO Segregation Of Duty Analysis Comparison

There are many questions about the built-in Segregation of Duties functionality within Dynamics AX and D365FO, how it works, and any short comings that it has? To help answer those questions, I created a white paper that compares the native SoD functionality to the functionality that the Fastpath tool offers surrounding this area.

Get the E-book here: Fastpath vs. Dynamics AX/D365FO Segregation Of Duty Analysis Comparison

Open Source Projects

Security Converter

  • This project is designed to convert the XML output a user gets from exporting security from the user interface in D365FO to the XML needed to create security in the AOT.

Task Recorder Parser

  • This project will process the output of a task recording from either Dynamics AX 2012 or Dynamics 365 for Finance and Operations and show the menu items consumed during the recording.


Contributor to:

  • Powershell module to handle the different management tasks during a Dynamics 365 Finace & Operations (D365FO)

Security Matrix

Building roles and implementing strong security in Dynamics AX/365FO can be a daunting task, so Fastpath created a tool to assist in designing security roles. Security design is an important part of any security setup. Roles in Dynamics AX/365FO were designed for ease of access, not segregation of duties. You can use this worksheet to recognize where you have conflicts, and build better roles to fit your company’s needs.

AX 2012 Security Matrix

D365FO Security Matrix

Other Resources / Blogs

Name Link
Martin Drab
Ievgen Miroshnikov
Andre Arnaud de Calavon
Justin Carter
Joris de Gruyter
Nathan Clouse
Joel Leichty
Ludwig Reinhard
Microsoft D365FO Community
365 Community Online
Dynamics Communities Forum